MongoDb Authentication Setup and Mongo Dump

Hi All, this document deals with how to set up MongoDB authentication and perform MongoDB dumps.  Prerequisites MongoDB, If MongoDB is not installed please go through our blog https://www.techrunnr.com/how-to-install-mongodb-in-ubuntu-16-04/ check the status of the MongoDB If the service is down, bring it up starting mongodb service For authentication setup we need to create user and passwords for MongoDB, so connect to the mongo shell connect to the admin DB and then Create a user and password It will give an output as shown below Authentication Setup. Go to mongod.conf (/etc/mongod.conf)…

Read More

secure your WordPress site

Hi All, this document how to secure your WordPress site. As you know WordPress in one of the famous and best Content management system available and widely used on the internet. WordPress is mainly used for hosting websites, blogs and there are many companies used for online sales as well. So here is the need to secure your WordPress sites. Securing the WordPress site is not a big deal, just follow some basic security measures. So in this document, we share you how to secure your WordPress site. 1. Use…

Read More

disable outdated version of SSL/TLS in apache

disable outdated version of SSL/TLS in apache Hi Techrunnr readers, this document deals with how to disable outdated version of SSL/TLS in apache. AS per the new PCI compliance following SSL protocols should be disabled from the server side. TLS 1.0/1.1 SSL 2.0/3.0 The above SSL protocols don’t provide any sort of protection while data transfer. Some cases of TLS 1.0 leads to Man In the Middle attack. Here are the following steps to disable above-mentioned SSL protocols, Add the the ssl.conf in /etc/httpd/conf.d/ by commenting on the existing Add…

Read More

php code scanner rips

php code scanner-rips Hi Techrunnr readers, this document deals with how to install php code scanner rips. RIPS is an open source static code analyzing tool for automatic detection of security vulnerabilities in PHP. It’s easy to install and do the test. Here are the features of RIPS Code scanner detect XSS, SQLi, File disclosure, LFI/RFI, RCE vulnerabilities and more 5 verbosity levels for debugging your scan results mark vulnerable lines in source code viewer highlight variables in the code viewer user-defined function code by mouse-over on detected call active…

Read More

authentication for kibana using nginx

Kibana authentication using nginx Hello Techrunnr Readers, This document deals with enabling authentication for kibana using nginx webserver. Kibana is opensource visulalization and analytics tools which works with Logstash and Elasticsearch. By default, kibana doesn’t have any authentication by default. Running kibana in the local machine without authentication doesn’t make security threat, but when you are setting up kibana publically it’s a major threat. Here we are going to achieve this by using create an htaccess user and configuring the proxy pass for kibana. This provides one more layer of…

Read More

connect mysql server from spring boot application with SSL

connect mysql server from spring boot application with SSL Hello Techrunnr, this document deals which how to connect mysql server from spring boot application with SSL enabled. All the applications interact with the database in order to get data for your web application. It’s always better and recommended to have encrypted communication between database and web application. Setting up of an encrypted connection between these two is very simple and easy. Here are the steps connect MySQL server from spring boot application with SSL enabled. Prerequisites * Java installed machine,…

Read More

Misperception on Information Security

Hello Everyone! Before getting jumped in depth into Information Security which is a topic bigger than an ocean, let’s take a step back and ask yourself a question, what is Information Security? Is it all about Hacking and protecting a web site and/or also its associated components like network routers, switches and servers that host that website from un-authorized users. Some might say, it’s related to Intrusion detection and prevention or firewall stuffs. Hardware related, software related etc. In simple it is all about protecting hard/digital data from un-authorized users.…

Read More

how to install and configure nDPI in ubuntu

how to install and configure nDPI in ubuntu Hi Techrunnr readers, this tutorial shows you how to install and configure nDPI in ubuntu. nDPI is an open source LGPLv3 library for deep-packet inspection. Based on OpenDPI it includes ntop extensions. We have tried to push them into the OpenDPI source tree but nobody answered emails so we have decided to create our own source tree. nDPI is used for application-layer detection of protocols, regardless of the port being used. This means that it is possible to both detect known protocols…

Read More

how to configure Letsencrypt for nginx on Ubuntu 18.04

how to configure Letsencrypt for nginx on Ubuntu 18.04 Hello Techrunnr readers, this document shows you how to configure Letsencrypt for nginx on Ubuntu 18.04. Letsencrypt is a free SSL certificate service provider, where you can get SSL certificate for your websites, blog, etc. Letsencrypt issues SSL certificate for 90 days, a task scheduler verifies the expiry date and reissue new certificate before it gets expired. So, Let’s start the configuration Let’s say you have 2 sites test.com and example.com and you have two separate files for virtual hosting, The…

Read More

geobased IP blocking using iptables

geobased IP blocking using iptables IT admins working hard to block unwanted traffic coming from different countries which are not relevant to their business. This geobased IP blocking using iptables help you to fight against this type of situation. You can achieve this using by apache (using geo module) and iptables. It’s always best to block at Iptables itself because blocking at apache level consumes more system resources. Here is a small shell script which performs this action. vi ipblock.sh #!/bin/bash # Purpose: Block all traffic from AFGHANISTAN (af) and…

Read More